Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23825

Malware in sbrugna...

9.6CVSS8.6AI score0.00727EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/05 3:8 p.m.12 views

CVE-2020-36283

HID OMNIKEY 5427 and OMNIKEY 5127 readers are vulnerable to CSRF when using the EEM driver Ethernet Emulation Mode. By persuading an authenticated user to visit a malicious Web site, a remote attacker could send a malformed HTTP request to upload a configuration file to the device. An attacker...

9.6CVSS6.3AI score0.00727EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2021/04/06 1:31 p.m.18 views

esc bug fix and enhancement update

The esc packages contain the Enterprise Security Client ESC, which allows the user to manage security smart cards. The primary function of the tool is to enroll smart cards, so that they can be used for common cryptographic operations, such as to secure e-mail and website access. Bug Fixes and...

0.1AI score
Exploits0
Prion
Prion
added 2021/03/24 4:15 p.m.17 views

Cross site scripting

HID OMNIKEY 5427 and OMNIKEY 5127 readers are vulnerable to CSRF when using the EEM driver Ethernet Emulation Mode. By persuading an authenticated user to visit a malicious Web site, a remote attacker could send a malformed HTTP request to upload a configuration file to the device. An attacker...

6.8CVSS8.2AI score0.00727EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/03/24 3:23 p.m.28 views

CVE-2020-36283

HID OMNIKEY 5427 and OMNIKEY 5127 readers are vulnerable to CSRF when using the EEM driver Ethernet Emulation Mode. By persuading an authenticated user to visit a malicious Web site, a remote attacker could send a malformed HTTP request to upload a configuration file to the device. An attacker...

9.6CVSS8.8AI score0.00727EPSS
Exploits0References2
CVE
CVE
added 2021/03/24 3:23 p.m.47 views

CVE-2020-36283

The CVE-2020-36283 issue affects HID OMNIKEY 5427 and OMNIKEY 5127 readers. A CSRF flaw in the Ethernet Emulation Mode (EEM) driver allows an authenticated user, lured to a malicious site, to send a crafted HTTP request that uploads a configuration file to the device. This can enable cross-site s...

9.6CVSS8.2AI score0.00727EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder